Security News > 2021 > October > Groove Calls for Cyberattacks on US as REvil Payback

Following the recent international law enforcement effort that dismantled the infrastructure for the REvil ransomware group, fellow cybercrime group Groove called for revenge - encouraging the wider cyber extortionist community to band together to target U.S. interests.

At a time when the U.S. is leading the international law enforcement effort to make splashy busts and shows of force against cybercriminals, this seems like a bold bet by Groove.

"While our boys were dying on honeypots, the nets from rude aibi squeezed their own but he was rewarded with higher and now he will go to jail for treason, so let's help our state fight against such ghouls as cybersecurity firms that are sold to amers, like US government agencies," Groove's post read. The threat letter goes on to instruct against attacks on Chinese interests in case the sanction-strapped Russian government should decide to hand them over.

The missive from Groove seems to correlate with threats from last July from threat group Orange against U.S. government agencies and hospitals, BleepingComputer added.

"As ransomware groups, such as REvil, hit important critical infrastructure companies, of course the U.S. government and other governments will retaliate. Unfortunately, by starting to target large infrastructure companies, the ransomware groups have crossed a boundary that requires more than just 'defending forward' and deterrence strategies."

"Given the level of attention that CISA, FBI and NSA are publicly demonstrating towards the Russian ransomware groups, we can be certain they are closely monitoring groups such as Groove, whether those groups make public statements like this one or not," she said.

News URL

https://threatpost.com/groove-ransomware-revil-revenge-us-cyberattacks/175726/